Importance of information sharing to prevent cyber threats


With ICT riskmeans any reasonably identifiable circumstance in relation to the use of network and information systems which, if materialised, may compromise the security of the network and information systems, of any technology dependent tool or process, of operations and processes, or of the provision of services by producing adverse effects in the digital or physical environment; becoming more and more complex and sophisticated, good measures for the detection and prevention of ICT riskmeans any reasonably identifiable circumstance in relation to the use of network and information systems which, if materialised, may compromise the security of the network and information systems, of any technology dependent tool or process, of operations and processes, or of the provision of services by producing adverse effects in the digital or physical environment; depend to a great extent on the regular sharing between financial entitiesas defined in Article 2, points (a) to (t) of threat and vulnerabilitymeans a weakness, susceptibility or flaw of an asset, system, process or control that can be exploited; intelligence. Information sharing contributes to creating increased awareness of cyber threatsmeans ‘cyber threat’ as defined in Article 2, point (8), of Regulation (EU) 2019/881;. In turn, this enhances the capacity of financial entitiesas defined in Article 2, points (a) to (t) to prevent cyber threatsmeans ‘cyber threat’ as defined in Article 2, point (8), of Regulation (EU) 2019/881; from becoming real ICT-related incidentsmeans a single event or a series of linked events unplanned by the financial entity that compromises the security of the network and information systems, and have an adverse impact on the availability, authenticity, integrity or confidentiality of data, or on the services provided by the financial entity; and enables financial entitiesas defined in Article 2, points (a) to (t) to more effectively contain the impact of ICT-related incidentsmeans a single event or a series of linked events unplanned by the financial entity that compromises the security of the network and information systems, and have an adverse impact on the availability, authenticity, integrity or confidentiality of data, or on the services provided by the financial entity; and to recover faster. In the absence of guidance at Union level, several factors seem to have inhibited such intelligence sharing, in particular uncertainty about its compatibility with data protection, anti-trust and liability rules.